$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft File: lX5Qp1--UC844-2_P0qq5mWuFIs.mft (raw, json) Hash identifier: gbgVDhgTb+Fm8dcl2RjtzGFJmzA9c6EG3g5KD/Ie2aQ= Subject key identifier: 02:71:DF:D3:27:D0:5D:50:22:37:AC:C7:71:E3:67:8F:98:F5:E7:22 Authority key identifier: 95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B Certificate issuer: /CN=A91D0B0E/serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft Manifest number: 84 Signing time: Fri 13 Jun 2025 05:30:44 +0000 Manifest this update: Fri 13 Jun 2025 05:30:44 +0000 Manifest next update: Fri 20 Jun 2025 05:30:44 +0000 Files and hashes: 1: lX5Qp1--UC844-2_P0qq5mWuFIs.crl (hash: hFBLoJbDOEsotoJ6RI7Wj6dSpmY9ELeQZC03xGoUZ+8=) 2: A0A9D60C807511EFAD8C4257C4F9AE02.roa (hash: QmeMLe3zHSz7gk9gq16CkmBIAgYCod6kVBmzDpdZxiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:30:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E, serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Validity Not Before: Jun 13 05:30:44 2025 GMT Not After : Jun 20 05:30:44 2025 GMT Subject: CN=684bb784-68bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9e:5a:d5:de:25:86:29:a3:18:9e:26:48:6f: 6a:a9:d9:47:aa:04:ae:a2:d7:24:89:38:f8:47:18: 87:b7:51:26:5d:62:1d:40:1e:4b:71:de:46:4f:17: 64:2d:42:e5:d1:d8:29:a3:47:0d:ca:50:6c:02:35: f3:3a:ed:fb:64:46:a3:2d:bb:17:57:7d:7a:6d:8a: 14:4b:18:2a:f9:f9:7a:b6:c2:d8:19:89:ee:4b:10: 01:5d:02:8a:ad:2c:0a:d6:df:35:59:d0:31:41:81: 41:c0:df:f7:61:d2:6f:fe:a6:bd:7f:8c:e1:38:2a: eb:43:f9:12:dc:43:62:1f:b8:3c:ed:8f:c2:5b:2c: 79:9d:74:67:4d:49:33:46:54:6e:58:57:f4:2f:bf: 96:42:9b:11:e2:77:f6:73:49:d3:82:f3:82:b3:a5: 52:24:c0:1c:3c:1d:fd:e2:a7:52:d2:73:11:17:61: 59:ac:ba:a5:f7:30:9f:d8:c2:d8:6d:14:1f:00:c9: 51:fe:e2:26:8f:2a:4f:2f:55:80:43:09:56:e3:94: 33:58:5b:18:0b:01:09:a2:8c:d8:20:22:21:2f:4a: 87:a7:4b:2e:71:a0:18:06:6a:a9:75:b9:2a:69:3a: 5f:d9:29:83:2c:8b:ae:a4:60:7a:b6:e4:6d:61:3f: 32:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:71:DF:D3:27:D0:5D:50:22:37:AC:C7:71:E3:67:8F:98:F5:E7:22 X509v3 Authority Key Identifier: keyid:95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:e0:2f:82:da:5c:66:82:e0:78:b0:ec:bb:a3:d3:e6:b1:d9: dc:c0:48:e8:a0:8e:2a:96:9e:d7:8a:4d:af:57:24:76:e9:12: 65:d6:68:b1:7b:7b:16:56:92:46:87:f4:19:d3:7e:48:57:21: 44:e3:9c:ad:e8:e8:dc:e9:ff:fc:08:75:f0:fa:46:47:b8:93: a3:3b:80:d5:b9:aa:ab:1a:84:82:09:2f:cf:a1:20:5b:da:74: 7a:b9:8d:82:a7:2c:15:4b:4c:96:56:65:a8:b8:83:50:ad:31: 46:d4:b4:c3:83:2f:9a:5c:a1:05:5d:d8:69:02:07:2f:01:1e: b8:70:9b:f5:0f:91:64:bf:31:ba:18:94:ca:74:76:c3:31:3f: a1:bd:a8:08:e1:ed:50:7f:ce:4f:62:0b:f4:51:6a:01:e3:38: 4c:f8:5f:f0:e0:ee:e6:ab:7d:68:0a:b7:62:7f:34:36:5c:02: 86:9e:01:b3:2a:fc:c2:c3:8f:41:19:99:36:b9:40:ca:05:b5: 26:80:32:1c:a5:01:31:1d:86:4e:42:53:bf:94:45:dc:b5:a3: cf:43:91:c0:64:a3:ea:89:bd:cd:36:6c:ae:e9:96:af:22:b0: fa:8a:75:a4:9b:1d:d7:73:d8:5a:18:20:fe:7e:75:67:2e:59: 0f:78:67:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMEUxMTAvBgNVBAUTKDk1N0U1MEE3NUZCRTUwMkYzOEUzRURCRjNGNEFBQUU2 NjVBRTE0OEIwHhcNMjUwNjEzMDUzMDQ0WhcNMjUwNjIwMDUzMDQ0WjAYMRYwFAYD VQQDEw02ODRiYjc4NC02OGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt55a1d4lhimjGJ4mSG9qqdlHqgSuotckiTj4RxiHt1EmXWIdQB5Lcd5GTxdk LULl0dgpo0cNylBsAjXzOu37ZEajLbsXV316bYoUSxgq+fl6tsLYGYnuSxABXQKK rSwK1t81WdAxQYFBwN/3YdJv/qa9f4zhOCrrQ/kS3ENiH7g87Y/CWyx5nXRnTUkz RlRuWFf0L7+WQpsR4nf2c0nTgvOCs6VSJMAcPB394qdS0nMRF2FZrLql9zCf2MLY bRQfAMlR/uImjypPL1WAQwlW45QzWFsYCwEJoozYICIhL0qHp0sucaAYBmqpdbkq aTpf2SmDLIuupGB6tuRtYT8yzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAJx39Mn 0F1QIjesx3HjZ4+Y9eciMB8GA1UdIwQYMBaAFJV+UKdfvlAvOOPtvz9KquZlrhSL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIwRS80RTZDQjRGNjgw NjkxMUVGODg3QjcwM0NDNEY5QUUwMi9sWDVRcDEtLVVDODQ0LTJfUDBxcTVtV3VG SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xYNVFwMS0tVUM4NDQtMl9QMHFxNW1XdUZJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIwRS80RTZDQjRGNjgwNjkxMUVGODg3QjcwM0NDNEY5QUUwMi9sWDVRcDEtLVVD ODQ0LTJfUDBxcTVtV3VGSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs4C+C2lxmguB4sOy7o9PmsdncwEjooI4qlp7Xik2vVyR26RJl1mix e3sWVpJGh/QZ035IVyFE45yt6Ojc6f/8CHXw+kZHuJOjO4DVuaqrGoSCCS/PoSBb 2nR6uY2CpywVS0yWVmWouINQrTFG1LTDgy+aXKEFXdhpAgcvAR64cJv1D5FkvzG6 GJTKdHbDMT+hvagI4e1Qf85PYgv0UWoB4zhM+F/w4O7mq31oCrdifzQ2XAKGngGz KvzCw49BGZk2uUDKBbUmgDIcpQExHYZOQlO/lEXctaPPQ5HAZKPqib3NNmyu6Zav IrD6inWkmx3Xc9haGCD+fnVnLlkPeGdb -----END CERTIFICATE-----Generated at Sat Jun 14 19:03:19 2025 by rpki-client